Unknown · Cla-Assistant · CVE-2021-21471
**Name of the Vulnerable Software and Affected Versions**
CLA-Assistant versions prior to 2.8.5
**Description**
The issue is due to improper access control, allowing an authenticated user to access API endpoints not intended for their use, potentially impacting the application's integrity.
**Recommendations**
For versions prior to 2.8.5, update to version 2.8.5 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive API endpoints to minimize the risk of exploitation.